User comments on ISPs
  >> PlusNet plc


Register (or login) on our website and you will not see this ad.


These posts have been archived and can no longer be replied to or modified.
Pages in this thread: 1 | 2 | 3 | 4 | (show all)   Print Thread
Standard User rsharma
(knowledge is power) Thu 17-May-07 13:47:06
Print Post

Steps to recover from security breach


[link to this post]
 
I had started another thread earlier (Things you can do to mitigate the email problems) and although it has some very useful information it is too long now for those trying to absorb the information. To that end I have created a blog entry to help people understand the exact issues that took place, how to minimise the risk and solutions to help you move forward.

The link for it is here (it will be kept updated so please check frequently):
http://pn-the-truth.blogspot.com/2007/05/help-against-recent-security-problem.html

I will update the information in the blog should anyone want to tell me of anything I might have missed as it will be easier for all the information to remain on one page. I will also add any other updates to the blog as they are needed. If anyone else wants to write any how-to or FAQ for customers please do so here or let me have it and I'll copy it over to the blog.

Please keep discussion focussed on this topic only,

-------------------------------------------------------
Plusnet: The Truth (Blog)
Formal Complaints Process
Testing Connection Speeds
Plusnet LLU and Your Rights
Standard User h0tblack
(fountain of knowledge) Thu 17-May-07 14:20:39
Print Post

Re: Steps to recover from security breach


[re: rsharma] [link to this post]
 
Thanks for the great post rsharma!
Standard User rsharma
(knowledge is power) Thu 17-May-07 15:15:32
Print Post

Re: Steps to recover from security breach


[re: h0tblack] [link to this post]
 
Thank you.

I have added a link to Kitz's site to allow people to get into their router and change passwords too. I have also added a link to gMai.

I think there is some major concern over any potential personal data breach and I will insert a comment or two to allay the fears (based on what has been stated by PN, no warranties implied on my part).

-------------------------------------------------------
Plusnet: The Truth (Blog)
Formal Complaints Process
Testing Connection Speeds
Plusnet LLU and Your Rights


Register (or login) on our website and you will not see this ad.

Standard User deleted
(deleted) Thu 17-May-07 16:26:18
Print Post

Re: Steps to recover from security breach


[re: rsharma] [link to this post]
 
Though if passwords were compromised then name, address, telephone number and bank sort code are accessible via the members centre if the main password was compromised. However unlikely PN would make you believe, it is still a possibility.
Standard User rsharma
(knowledge is power) Thu 17-May-07 16:29:27
Print Post

Re: Steps to recover from security breach


[re: deleted] [link to this post]
 
>Though if passwords were compromised then name, address, telephone number and bank sort code are accessible via the members centre if the main password was compromised

True. As you say though, only if logging into webmail or trojan and using the main account during that time. Hence I have included instruction on how to change the password even for non-main account use. The problem is that PN haven't stated what the time period was. I believe it to be 5-11 May but PN have only claimed 9th.

-------------------------------------------------------
Plusnet: The Truth (Blog)
Formal Complaints Process
Testing Connection Speeds
Plusnet LLU and Your Rights

Edited by rsharma (Thu 17-May-07 16:50:48)

Standard User deleted
(deleted) Thu 17-May-07 17:06:04
Print Post

Re: Steps to recover from security breach


[re: rsharma] [link to this post]
 
I think you'll find a lot of people logged into Webmail using the main password only. All my alternative addresses that have been compromised were setup as Identities in the Webmail Settings.
Standard User whiteshepherd
(newbie) Thu 17-May-07 17:37:47
Print Post

Re: Steps to recover from security breach


[re: rsharma] [link to this post]
 
I would like to record my thanks to everyone who has contributed to this invaluable information and particularly to rsharma for assembling it into a blog. I would have been totally lost for a solution without it.
Standard User jelv
(fountain of knowledge) Thu 17-May-07 17:38:50
Print Post

Re: Steps to recover from security breach


[re: deleted] [link to this post]
 
With the changes made to mail configuration, there is now no reason to have to go in to the main default mailbox. You can create mailboxes as required and you can either blackhole or direct your catchall to a specific named mailbox. Which means that you don't have to use your main account password for email at all.

Sounds like a smart move everybody should be making!

jelv

Plusnet ADSL PAYG Jan 2004 -
Plusnet Dialup Nov 2001 to Jan 2004
Previously Compuserve, BT & LineOne Dialup
Standard User rsharma
(knowledge is power) Fri 18-May-07 11:04:26
Print Post

Re: Steps to recover from security breach


[re: whiteshepherd] [link to this post]
 
You are welcome and I'm glad I was able to help. Thank you for your kind words.

-------------------------------------------------------
Plusnet: The Truth (Blog)
Formal Complaints Process
Testing Connection Speeds
Plusnet LLU and Your Rights
Standard User deleted
(deleted) Fri 18-May-07 12:31:27
Print Post

Re: Steps to recover from security breach


[re: rsharma] [link to this post]
 
Top class work mate, boiled it down nicely !!

I'm with F2s now but our +Net addresses are live and we pick them up every now and again coz there is always one person who finds it impossible to update their address book I saw the BIG fuss here but REALLY could not be bothered to read through it all to find out what was going on, wasted FAR too much of my life trying to find out what the deal is with +Net , you blog summed it up nicely and for that once again I thank you

As a precaution I've deleted all the additional accounts, my 3 kids all had one each, really don't want them receiving some of the stuff I have seen....

Laters,
Pages in this thread: 1 | 2 | 3 | 4 | (show all)   Print Thread

Jump to